r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 1ef1ca48ca7fd21239a2a11fcfc6366b
ee44232c27fb39d25ac901df2247c3ffd2c5bcca
e9bad8be490429a84a567acd710f97a402bcf7b4ba4e47f2bed27cada418c439
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "E9BAD8BE490429A84A567ACD710F97A402BCF7B4BA4E47F2BED27CADA418C439"
Last-Modified: Wed, 12 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=16257
Expires: Fri, 14 Oct 2022 06:44:28 GMT
Date: Fri, 14 Oct 2022 02:13:31 GMT
Connection: keep-alive
firefox.settings.services.mozilla.com/v1/
143.204.55.35200 OK 939 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (939), with no line terminators
Hash bdb8b66c705a7b996496d780f50c00b5
403ae92039fcc933870f51f913f78ccaf9652256
c923ed2539f4ce9f4d43743c402fbb2060a52a4cbedbf14c5f5742ab718073d6
GET /v1/ HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 939
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: Content-Type, Alert, Content-Length, Retry-After, Backoff
Cache-Control: max-age=3600
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Date: Fri, 14 Oct 2022 01:49:50 GMT
Expires: Fri, 14 Oct 2022 02:45:25 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
X-Cache: Hit from cloudfront
Via: 1.1 bcd5dadccb0831729969c938747ff79a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: _HS4UieV7q8rzBXwYRAo9B-Fk18ySZq9aNN_AZvJ4GtEXWMbw73PRQ==
Age: 1421
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash bce7a9c1ff7500c4cfad5c3a3581a939
74b8dadf6ead0ce5d1d72e40a2eac554c5f5430c
6c840089371a0e25d60d0d76d6400348b0cdfb5967876c7b88e2b4a2aaf01a03
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "6C840089371A0E25D60D0D76D6400348B0CDFB5967876C7B88E2B4A2AAF01A03"
Last-Modified: Wed, 12 Oct 2022 14:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=13989
Expires: Fri, 14 Oct 2022 06:06:40 GMT
Date: Fri, 14 Oct 2022 02:13:31 GMT
Connection: keep-alive
content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
34.160.144.191200 OK 5.3 kB URL HTTP/2 content-signature-2.cdn.mozilla.net/chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain
IP 34.160.144.191:0
File type PEM certificate\012- , ASCII text
Hash 67d5a988edcda47bc3b3b3f65d32b4b6
d4f0e0da8b3690cc7da925026d3414b68c7d954f
55e4848e3ec682e808ce7ee70950f86179c43af4f81926d826a95edfda395a78
GET /chains/remote-settings.content-signature.mozilla.org-2022-11-19-18-50-54.chain HTTP/1.1
Host: content-signature-2.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
x-amz-id-2: DNhFIDD/+S8vMexpKeAoBwSF8THJ2Ez8mv8/fiS1eXbyfgovHPzhPXfHz0pTXj+ZKqPw7Y5wWd8=
x-amz-request-id: CWRJB660KZ4PZNDT
content-disposition: attachment
accept-ranges: bytes
server: AmazonS3
content-length: 5348
via: 1.1 google
date: Fri, 14 Oct 2022 02:01:58 GMT
age: 693
last-modified: Fri, 30 Sep 2022 18:50:55 GMT
etag: "67d5a988edcda47bc3b3b3f65d32b4b6"
content-type: binary/octet-stream
cache-control: public,max-age=3600
alt-svc: clear
X-Firefox-Spdy: h2
contile.services.mozilla.com/v1/tiles
34.117.237.239200 OK 12 B URL HTTP/2 contile.services.mozilla.com/v1/tiles
IP 34.117.237.239:0
File type JSON data\012- , ASCII text, with no line terminators
Hash 23e88fb7b99543fb33315b29b1fad9d6
a48926c4ec03c7c8a4e8dffcd31e5a6cdda417ce
7d8f1de8b7de7bc21dfb546a1d0c51bf31f16eee5fad49dbceae1e76da38e5c3
GET /v1/tiles HTTP/1.1
Host: contile.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
date: Fri, 14 Oct 2022 02:13:32 GMT
content-type: application/json
content-length: 12
strict-transport-security: max-age=31536000
via: 1.1 google
alt-svc: clear
X-Firefox-Spdy: h2
gradacode.co.ke/images/profoma/EXEL.zip
66.29.147.146301 Moved Permanently 0 B URL HTTP/1.1 gradacode.co.ke/images/profoma/EXEL.zip
IP 66.29.147.146:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
Analyzer Verdict Alert fortinet Phishing
GET /images/profoma/EXEL.zip HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Connection: keep-alive
Upgrade-Insecure-Requests: 1
HTTP/1.1 301 Moved Permanently
Date: Fri, 14 Oct 2022 02:13:31 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Redirect-By: WordPress
Location: https://gradacode.co.ke/images/profoma/EXEL.zip
Vary: User-Agent
Content-Length: 0
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
143.204.55.35200 OK 329 B URL HTTP/1.1 firefox.settings.services.mozilla.com/v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US
IP 143.204.55.35:0
File type JSON data\012- , ASCII text, with very long lines (329), with no line terminators
Hash 0333b0655111aa68de771adfcc4db243
63f295a144ac87a7c8e23417626724eeca68a7eb
60636eb1dc67c9ed000fe0b49f03777ad6f549cb1d2b9ff010cf198465ae6300
GET /v1/buckets/main/collections/ms-language-packs/records/cfr-v1-en-US HTTP/1.1
Host: firefox.settings.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/json
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/json
Connection: keep-alive
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/1.1 200 OK
Content-Type: application/json
Content-Length: 329
Connection: keep-alive
Access-Control-Allow-Origin: *
Access-Control-Expose-Headers: ETag, Expires, Content-Length, Cache-Control, Pragma, Content-Type, Alert, Backoff, Last-Modified, Retry-After
Content-Security-Policy: default-src 'none'; frame-ancestors 'none'; base-uri 'none';
Last-Modified: Fri, 25 Mar 2022 17:45:46 GMT
Strict-Transport-Security: max-age=31536000
X-Content-Type-Options: nosniff
Date: Fri, 14 Oct 2022 02:07:43 GMT
Cache-Control: max-age=3600
Expires: Fri, 14 Oct 2022 02:30:14 GMT
ETag: "1648230346554"
X-Cache: Hit from cloudfront
Via: 1.1 a7d2a4ec2f50830f128dc406960aef9a.cloudfront.net (CloudFront)
X-Amz-Cf-Pop: OSL50-C1
X-Amz-Cf-Id: QpCfJdYTBSSO4EqzMt0lCnDd7lltJEdOB5GxCWtXfcBovDa-FXOKEQ==
Age: 349
ocsp.digicert.com/
93.184.220.29200 OK 471 B IP 93.184.220.29:0
Hash 3583e23195fad53de085f55b7ae476b8
1e1ee824f8b5706b0a32b269af82769bb44f5d0f
0c3d6dbcec45e2d28fe0b43d2ae2eaf8cbb05d435b981edc1da311ce356fe30d
POST / HTTP/1.1
Host: ocsp.digicert.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Accept-Ranges: bytes
Age: 198
Cache-Control: max-age=107796
Content-Type: application/ocsp-response
Date: Fri, 14 Oct 2022 02:13:32 GMT
Etag: "6347c71a-1d7"
Expires: Sat, 15 Oct 2022 08:10:08 GMT
Last-Modified: Thu, 13 Oct 2022 08:06:50 GMT
Server: ECS (ska/F71B)
X-Cache: HIT
Content-Length: 471
push.services.mozilla.com/
34.214.236.46101 Switching Protocols 0 B URL HTTP/1.1 push.services.mozilla.com/
IP 34.214.236.46:0
Hash d41d8cd98f00b204e9800998ecf8427e
da39a3ee5e6b4b0d3255bfef95601890afd80709
e3b0c44298fc1c149afbf4c8996fb92427ae41e4649b934ca495991b7852b855
GET / HTTP/1.1
Host: push.services.mozilla.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Sec-WebSocket-Version: 13
Origin: wss://push.services.mozilla.com/
Sec-WebSocket-Protocol: push-notification
Sec-WebSocket-Extensions: permessage-deflate
Sec-WebSocket-Key: e+zJuOa7V6s9t5HcmOhSIQ==
Connection: keep-alive, Upgrade
Sec-Fetch-Dest: websocket
Sec-Fetch-Mode: websocket
Sec-Fetch-Site: cross-site
Pragma: no-cache
Cache-Control: no-cache
Upgrade: websocket
HTTP/1.1 101 Switching Protocols
Connection: Upgrade
Upgrade: websocket
Sec-WebSocket-Accept: 02rau+YAyWV6VeJstPiiDBiGOzk=
gradacode.co.ke/images/profoma/EXEL.zip
66.29.147.146404 Not Found 10 kB URL HTTP/1.1 gradacode.co.ke/images/profoma/EXEL.zip
IP 66.29.147.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash 285f859679dbf860ee311afd832945ae
d250090d4f038f716f75e30b0d9f28c8f25374fd
c7366de6d158e16ec845616394976acb494af781a68aeac386df6786c82c6a67
Analyzer Verdict Alert fortinet Phishing
GET /images/profoma/EXEL.zip HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/html,application/xhtml+xml,application/xml;q=0.9,image/avif,image/webp,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Upgrade-Insecure-Requests: 1
Sec-Fetch-Dest: document
Sec-Fetch-Mode: navigate
Sec-Fetch-Site: none
Sec-Fetch-User: ?1
HTTP/1.1 404 Not Found
Date: Fri, 14 Oct 2022 02:13:32 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://gradacode.co.ke/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10231
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
gradacode.co.ke/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
66.29.147.146200 OK 12 kB URL HTTP/1.1 gradacode.co.ke/wp-includes/css/dist/block-library/style.min.css?ver=6.0.2
IP 66.29.147.146:0
File type ASCII text, with very long lines (43771)
Hash e5548800176e913a9084f47a3e1e04f6
eff4604acc5c26ae82a19188de2f98bf5b79d80c
a2569c768eaca09f2483b971fcebb97badd57c9a16b5ae3e16b8cdcd8c688b07
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/css/dist/block-library/style.min.css?ver=6.0.2 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:33 GMT
Server: Apache
Last-Modified: Wed, 13 Jul 2022 03:27:07 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 11681
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/formcraft3/dist/form.css?ver=3.9.3
66.29.147.146200 OK 8.8 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/formcraft3/dist/form.css?ver=3.9.3
IP 66.29.147.146:0
File type ASCII text, with very long lines (64566), with no line terminators
Hash 7c08c8ab3d7d12ea96a31a617d9f7b5b
2b2124cfef292686c198c5326abdcd784a0d1acd
8edaf8f91899d115b89aecb8993e141e1b8edbb234363dd62b543bbae4a1edd5
GET /wp-content/plugins/formcraft3/dist/form.css?ver=3.9.3 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:33 GMT
Server: Apache
Last-Modified: Sun, 17 Jul 2022 21:35:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 8791
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 24b79ec946ea2f46c118f1d32753fab7
9e3a5b712f6f1aea7bf30cad622a113428736c02
2444b6ba10658bc23690a3065438df55ac52b240bde9c29a5226a3588924e65a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 14 Oct 2022 02:13:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gradacode.co.ke/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.5.1
66.29.147.146200 OK 2.0 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.5.1
IP 66.29.147.146:0
File type ASCII text, with very long lines (10435), with no line terminators
Hash 38b1f483d4bf6b1548990385c8673746
1668edb02c5170be308368292a4c12033d0a42f4
98138d83d7cb12e99802ba034b400a67e0d7b6e378d8bcd1b4d9f4fe44ce1111
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-vendors-style.css?ver=8.5.1 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:33 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1962
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/formcraft3/dist/formcraft-common.css?ver=3.9.3
66.29.147.146200 OK 5.7 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/formcraft3/dist/formcraft-common.css?ver=3.9.3
IP 66.29.147.146:0
File type ASCII text, with very long lines (28249), with no line terminators
Hash 70f0d41796ff637a11ec6553de9bd00b
5306d45ca27da2be307511b7b97c6302df1a8505
33f60dca6cce5c4675e188eed17d045795c3fc0f2a4421c852b5f831d74b25a6
GET /wp-content/plugins/formcraft3/dist/formcraft-common.css?ver=3.9.3 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:33 GMT
Server: Apache
Last-Modified: Sun, 17 Jul 2022 21:35:56 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5657
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
66.29.147.146200 OK 972 B URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3
IP 66.29.147.146:0
Hash 8bf268dfcca7cb20719b7ea14373ef4a
58bd839bbf0e8cc082f0a488b538b4ec71bebd2e
eece4a14939273c7af07bce8bab3a6cfc2c9de44c0eea82cc886abac13cb3870
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/css/styles.css?ver=5.6.3 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:33 GMT
Server: Apache
Last-Modified: Fri, 09 Sep 2022 11:21:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 972
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/owl-carousel/owl.css?ver=1650032799
66.29.147.146200 OK 1.4 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/owl-carousel/owl.css?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash 8756860a467a96c5298499aa9203f747
d65d9ce1fd5a51793b4c27f25ecc16a7f08427bd
7409a237de8a4c61d2aa6c7c360749141c5dd6374785315c663ee89aa6a9c74f
GET /wp-content/plugins/linoor-addon/assets/vendors/owl-carousel/owl.css?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:33 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1396
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jarallax/jarallax.css?ver=1650032799
66.29.147.146200 OK 208 B URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jarallax/jarallax.css?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash 0fcb4e64095495e81fd079a766c581c1
aff75f7cd8b8975927cf063c1287e889a6dd7f6f
9cbd1c33d22ee8c38d76044d25c0fa54bdcf5f169fbafcedcda1c71b459e36e2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/jarallax/jarallax.css?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:33 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 208
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 24b79ec946ea2f46c118f1d32753fab7
9e3a5b712f6f1aea7bf30cad622a113428736c02
2444b6ba10658bc23690a3065438df55ac52b240bde9c29a5226a3588924e65a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 14 Oct 2022 02:13:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/animate/animate.min.css?ver=1650032799
66.29.147.146200 OK 4.7 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/animate/animate.min.css?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash 1184ff44c73559b450a971f3dab378c3
74279c495c0bb2b78425f204578b426a6f5c39e7
13fe8d0676c888a0ce8805b1154b10a30792d6f456b042f56396af8a0020f87a
GET /wp-content/plugins/linoor-addon/assets/vendors/animate/animate.min.css?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:33 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4734
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/reey-font/stylesheet.css?ver=1650032799
66.29.147.146200 OK 201 B URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/reey-font/stylesheet.css?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash 80106e16365cd7af82739488fa5ea573
068fed084d9ecfa75569eb18dac6e7992ba5a0f5
41512ecdbd541016f44036c6a57a8edf1e31dfb8c2f4f71168bfd17b1939139e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/reey-font/stylesheet.css?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:33 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 201
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash 24b79ec946ea2f46c118f1d32753fab7
9e3a5b712f6f1aea7bf30cad622a113428736c02
2444b6ba10658bc23690a3065438df55ac52b240bde9c29a5226a3588924e65a
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 14 Oct 2022 02:13:33 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gradacode.co.ke/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.5.1
66.29.147.146200 OK 24 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.5.1
IP 66.29.147.146:0
File type Unicode text, UTF-8 text, with very long lines (65527), with no line terminators
Hash 0a8a9bda9213f021de7793cfe07476de
3394877b16376764353c39836a647779204bb4e0
983fc72c739041ac9128ed2211333fc07251b2bb061112c2795cd6fbb1c12baa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/packages/woocommerce-blocks/build/wc-blocks-style.css?ver=8.5.1 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:33 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 24143
Keep-Alive: timeout=5, max=100
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/swiper/swiper.min.css?ver=1650032799
66.29.147.146200 OK 4.1 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/swiper/swiper.min.css?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with very long lines (13425), with CRLF line terminators
Hash 3e3ae9dec63564134c285ca0d3a0f6c5
ac2fd6e049fe25d9c569be877a3d79e52a8e650a
b69b4bddd8dfb765d2b28abeec12af360d7a481a63a880ae1d94cb0c3210fa9e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/swiper/swiper.min.css?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:33 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4136
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jquery-fancybox/jquery.fancybox.min.css?ver=1650032799
66.29.147.146200 OK 3.2 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jquery-fancybox/jquery.fancybox.min.css?ver=1650032799
IP 66.29.147.146:0
File type Unicode text, UTF-8 text, with very long lines (13734), with no line terminators
Hash 4aa83282cfd78eff0eb96f1ef859c41c
2dad526069f66371f4f390c8bd451116e7a3681e
c111dffb462e77cb52ee7474752b18e01ce935d5295e212c9031f42cf30326f5
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/jquery-fancybox/jquery.fancybox.min.css?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:33 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3155
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jquery-ui/jquery-ui.css?ver=1650032799
66.29.147.146200 OK 8.5 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jquery-ui/jquery-ui.css?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with very long lines (2363), with CRLF line terminators
Hash abc8dad74008d7968b752f34f5bd21f1
ace9d0af648f2b83f1517e00e71b98bdba7f09f3
830260c7b60c5aab137929ec38af46561029e862644836a87fea5bce02bedb17
GET /wp-content/plugins/linoor-addon/assets/vendors/jquery-ui/jquery-ui.css?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:33 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 8461
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/themes/linoor/assets/vendors/flaticons/css/flaticon.css?ver=1.1
66.29.147.146200 OK 2.6 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/vendors/flaticons/css/flaticon.css?ver=1.1
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash 777aa8d903a1fe571affd0f5ef5ccec1
bea42619cacca8a5800efcba6d1a4255a983dfd8
0877fa34a94513a288e5853454c5d7383a99ad86d960feaf8a1dcd35f71b37cd
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/linoor/assets/vendors/flaticons/css/flaticon.css?ver=1.1 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:33 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2559
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/themes/linoor/assets/vendors/linoor-icons/css/linoor-icons.css?ver=1.1
66.29.147.146200 OK 424 B URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/vendors/linoor-icons/css/linoor-icons.css?ver=1.1
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash 23b33cac8b5fc4a54596b77263e559b1
0d46e9bc39c95da1214f98a3b24b8ab44803002e
dc17ff81bbc06377f6a4fa97c058f4d7e35feffe3a514d7be2cce375bab734c4
GET /wp-content/themes/linoor/assets/vendors/linoor-icons/css/linoor-icons.css?ver=1.1 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:33 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 424
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/themes/linoor/assets/vendors/fontawesome/css/all.min.css?ver=5.15.1
66.29.147.146200 OK 13 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/vendors/fontawesome/css/all.min.css?ver=5.15.1
IP 66.29.147.146:0
File type ASCII text, with very long lines (59158), with CRLF line terminators
Hash 8534402e156c2d4d91c185199c7e40bc
2fc5af81adbd0061e63ca8ee6539e62ea366494c
1ee62898304fa24c58741ef850927ebfa24027df78452c578550c82e4f23ba00
GET /wp-content/themes/linoor/assets/vendors/fontawesome/css/all.min.css?ver=5.15.1 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:33 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 12873
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/themes/linoor/assets/vendors/bootstrap/css/bootstrap.min.css?ver=4.5.3
66.29.147.146200 OK 24 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/vendors/bootstrap/css/bootstrap.min.css?ver=4.5.3
IP 66.29.147.146:0
File type ASCII text, with very long lines (65321), with CRLF line terminators
Hash 9433b8473b4945b7f3d8b978bd225a25
eaf932137ab66de799ecbdd9e93fd3b5d9205cc9
6fb1096dacf1da0e49bb137af455a6b2bceece0fc41faa86b10b202f75f82a3a
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/linoor/assets/vendors/bootstrap/css/bootstrap.min.css?ver=4.5.3 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:33 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 23921
Keep-Alive: timeout=5, max=99
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/themes/linoor/style.css?ver=1665713612
66.29.147.146200 OK 4.8 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/style.css?ver=1665713612
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash 87b916b0d3751eed15e679a99571879b
c9d2ab9eaf3692a1630328671d9e604264e002c8
a82915fe1f3fd48b510e726478dfb9db9ee88bdb96a1a4f3a9a558cba78f59a8
GET /wp-content/themes/linoor/style.css?ver=1665713612 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:33 GMT
Server: Apache
Last-Modified: Sun, 06 Feb 2022 09:38:50 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4777
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: text/css
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 73b0059a5671ff189dccdeb345c3dfb6
89a89effe4d8e12b478b3abb9ae5e94a861d957d
673eaa034fe322874455a7ea38197c02819882d0176d9ae3773eea63dd53e3b0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "673EAA034FE322874455A7EA38197C02819882D0176D9AE3773EEA63DD53E3B0"
Last-Modified: Wed, 12 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3833
Expires: Fri, 14 Oct 2022 03:17:27 GMT
Date: Fri, 14 Oct 2022 02:13:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 73b0059a5671ff189dccdeb345c3dfb6
89a89effe4d8e12b478b3abb9ae5e94a861d957d
673eaa034fe322874455a7ea38197c02819882d0176d9ae3773eea63dd53e3b0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "673EAA034FE322874455A7EA38197C02819882D0176D9AE3773EEA63DD53E3B0"
Last-Modified: Wed, 12 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3833
Expires: Fri, 14 Oct 2022 03:17:27 GMT
Date: Fri, 14 Oct 2022 02:13:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 73b0059a5671ff189dccdeb345c3dfb6
89a89effe4d8e12b478b3abb9ae5e94a861d957d
673eaa034fe322874455a7ea38197c02819882d0176d9ae3773eea63dd53e3b0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "673EAA034FE322874455A7EA38197C02819882D0176D9AE3773EEA63DD53E3B0"
Last-Modified: Wed, 12 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3833
Expires: Fri, 14 Oct 2022 03:17:27 GMT
Date: Fri, 14 Oct 2022 02:13:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 73b0059a5671ff189dccdeb345c3dfb6
89a89effe4d8e12b478b3abb9ae5e94a861d957d
673eaa034fe322874455a7ea38197c02819882d0176d9ae3773eea63dd53e3b0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "673EAA034FE322874455A7EA38197C02819882D0176D9AE3773EEA63DD53E3B0"
Last-Modified: Wed, 12 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3833
Expires: Fri, 14 Oct 2022 03:17:27 GMT
Date: Fri, 14 Oct 2022 02:13:34 GMT
Connection: keep-alive
r3.o.lencr.org/
23.36.76.226200 OK 503 B IP 23.36.76.226:0
ASN #20940 Akamai International B.V.
Hash 73b0059a5671ff189dccdeb345c3dfb6
89a89effe4d8e12b478b3abb9ae5e94a861d957d
673eaa034fe322874455a7ea38197c02819882d0176d9ae3773eea63dd53e3b0
POST / HTTP/1.1
Host: r3.o.lencr.org
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 85
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Server: nginx
Content-Type: application/ocsp-response
Content-Length: 503
ETag: "673EAA034FE322874455A7EA38197C02819882D0176D9AE3773EEA63DD53E3B0"
Last-Modified: Wed, 12 Oct 2022 21:00:00 UTC
Cache-Control: public, no-transform, must-revalidate, max-age=3833
Expires: Fri, 14 Oct 2022 03:17:27 GMT
Date: Fri, 14 Oct 2022 02:13:34 GMT
Connection: keep-alive
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98481d75-e189-4e2a-94de-5d6c94c4ea9e.jpeg
34.120.237.76200 OK 6.7 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98481d75-e189-4e2a-94de-5d6c94c4ea9e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash b1a0e7692a42450c5880b6bf2c3e600f
3c567806bfec9a195235f1c1e3c3e4bc647fdde9
318e462ae5b2da302cc3fa6539270866a352f011ebcc9ea35eef50c38fe9fe24
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F98481d75-e189-4e2a-94de-5d6c94c4ea9e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 6685
x-amzn-requestid: 8d5aa091-bf24-4ab1-a33b-73795e951da1
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z9m0EENeIAMF9Eg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634884e6-36c8c3d75b57c8df3b0644a0;Sampled=0
x-amzn-remapped-date: Thu, 13 Oct 2022 21:36:38 GMT
x-amz-cf-pop: SEA73-P2, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: Lf8nte3n3LzQdLXnv6MfnVk2LO0b0CjSfyiaxK2UWsM2DLsm-xEAgA==
via: 1.1 33d72803ad26b392c1b578a2b1276580.cloudfront.net (CloudFront), 1.1 2f7934de1dfe281c3e4446892eab6462.cloudfront.net (CloudFront), 1.1 google
date: Thu, 13 Oct 2022 22:56:52 GMT
age: 11802
etag: "3c567806bfec9a195235f1c1e3c3e4bc647fdde9"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3261ab5d-a8bc-4570-b3a7-6a84af32a316.jpeg
34.120.237.76200 OK 11 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3261ab5d-a8bc-4570-b3a7-6a84af32a316.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 8cb88b15f7586a43b2f80b8079afd374
11fd9e6c872c6eb6e03761dbbcf38bf3707b741a
8bfffc22e8ea19dab232e21f1f5f76811e37b048f80cad532f905f5a1047b9c4
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F3261ab5d-a8bc-4570-b3a7-6a84af32a316.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 10731
x-amzn-requestid: 30e35246-dd7f-421c-afcf-5c5372edd5d9
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z0fEgESiIAMFTtg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6344dee9-06ab66382ab2d71a18b6a8be;Sampled=0
x-amzn-remapped-date: Tue, 11 Oct 2022 03:11:37 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: sLN92JGZJT1ehNSM8XWtJdKGINIQ5n4uwLcx8ib_tMRzqZese2DtuA==
via: 1.1 76dcc62b68091cc715d50b5017be77fc.cloudfront.net (CloudFront), 1.1 cd858042f70b416ca05e042acf3908a4.cloudfront.net (CloudFront), 1.1 google
date: Thu, 13 Oct 2022 04:47:06 GMT
age: 77188
etag: "11fd9e6c872c6eb6e03761dbbcf38bf3707b741a"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff58dfe55-56a4-4e0b-a366-cd081922c244.jpeg
34.120.237.76200 OK 7.1 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff58dfe55-56a4-4e0b-a366-cd081922c244.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3f8948f2bf0a9b7e05bc383a4f46e2b7
659f6588d2101c18cd0314bbd7dd6329f4ca0259
4ee8e304ca74c97ee908d7c20847f6a56e738bfa3c4892cb573acb21685e1b4a
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2Ff58dfe55-56a4-4e0b-a366-cd081922c244.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7123
x-amzn-requestid: c8711074-e709-4b47-a7b7-eb6c4274c3b6
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z9m7YEYvoAMFuuw=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63488515-6e27bf2a07eaf0d709baf168;Sampled=0
x-amzn-remapped-date: Thu, 13 Oct 2022 21:37:25 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: 0h_-O272efFitM31kyXoQm2juCHsB-Aunh9zH6tvf7wTAcuUnpJuHQ==
via: 1.1 5ab5dc09da67e3ea794ec8a82992cc88.cloudfront.net (CloudFront), 1.1 cd64decb1403270c914848213601a674.cloudfront.net (CloudFront), 1.1 google
date: Thu, 13 Oct 2022 21:59:20 GMT
age: 15254
etag: "659f6588d2101c18cd0314bbd7dd6329f4ca0259"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04c5eb09-a51c-4d42-9d71-a6750785412e.jpeg
34.120.237.76200 OK 7.4 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04c5eb09-a51c-4d42-9d71-a6750785412e.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 6ec85451e29032e19fdd065e7af38285
539d81dfeee2bc71b5f25c8640ec44f654219947
12421ea06f091b33482f7b311fbaddb4b591fffba79e9f850ad32b81ee25a32f
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F04c5eb09-a51c-4d42-9d71-a6750785412e.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7389
x-amzn-requestid: 1ad66b8d-6150-4bfd-a4c9-9debaa968558
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z3yKIH8coAMF25w=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-634630a7-5d15be9e48b6b6c54b102c3c;Sampled=0
x-amzn-remapped-date: Wed, 12 Oct 2022 03:12:39 GMT
x-amz-cf-pop: SEA73-P1
x-cache: Hit from cloudfront
x-amz-cf-id: ux1NseeXhabVT2FIovdI5xriFyigpwB15C04t8K2PjZvq1p7kIncmQ==
via: 1.1 eece508272520f70691e4eebdc5a6dea.cloudfront.net (CloudFront), 1.1 09331f0822fc98eebaf04130a83dbd44.cloudfront.net (CloudFront), 1.1 google
date: Thu, 13 Oct 2022 06:02:03 GMT
age: 72691
etag: "539d81dfeee2bc71b5f25c8640ec44f654219947"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F602472cb-312a-40b4-8d11-7c84be9e8992.jpeg
34.120.237.76200 OK 7.3 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F602472cb-312a-40b4-8d11-7c84be9e8992.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 3df3df53b79f46f964bf0ccf34dfbc6e
ec1000d7fdea0299b3af4055358386f638051601
35c21c1897e29fa86e968332e908dd4c91f008aa53d4b57c4024170e5858dc26
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F602472cb-312a-40b4-8d11-7c84be9e8992.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 7265
x-amzn-requestid: d55c92dc-b78e-4b67-becd-096a9f3110cf
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z9m8NHdJIAMF0rQ=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-6348851a-4d960dad67f360fd7c45320e;Sampled=0
x-amzn-remapped-date: Thu, 13 Oct 2022 21:37:30 GMT
x-amz-cf-pop: HIO50-C1, SEA73-P1
x-cache: Miss from cloudfront
x-amz-cf-id: m9n5AWyucg7n9y8x24WnFFjsYfBltDF43FvwjV_mdGKzsHOx1_DxWw==
via: 1.1 86b676273517904f44af31586adb06ae.cloudfront.net (CloudFront), 1.1 1481cc55c02c3a782ad420b6bac2cb32.cloudfront.net (CloudFront), 1.1 google
date: Thu, 13 Oct 2022 21:45:48 GMT
age: 16066
etag: "ec1000d7fdea0299b3af4055358386f638051601"
content-type: image/jpeg
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42e00752-5abb-46e6-8a0d-c47f96af6b9f.jpeg
34.120.237.76200 OK 9.6 kB URL HTTP/2 img-getpocket.cdn.mozilla.net/296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42e00752-5abb-46e6-8a0d-c47f96af6b9f.jpeg
IP 34.120.237.76:0
File type JPEG image data, JFIF standard 1.01, aspect ratio, density 1x1, segment length 16, progressive, precision 8, 296x148, components 3\012- data
Hash 07dec47a418618af22b7104e1bbde5e6
c34dd1552df55e8b62e699a5efb14e7f26a60acb
5eb94cd99c5187faa2c0c8f5ef5b9786009d37c2950ca0048eb3f737e45c363b
GET /296x148/filters:format(jpeg):quality(60):no_upscale():strip_exif()/https%3A%2F%2Fs3.amazonaws.com%2Fpocket-curatedcorpusapi-prod-images%2F42e00752-5abb-46e6-8a0d-c47f96af6b9f.jpeg HTTP/1.1
Host: img-getpocket.cdn.mozilla.net
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Origin: null
Connection: keep-alive
Sec-Fetch-Dest: image
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
server: nginx
content-length: 9622
x-amzn-requestid: 340d7e66-1eb4-49fc-bf3d-56e5cc4af771
x-xss-protection: 1; mode=block
access-control-allow-origin: *
strict-transport-security: max-age=63072000; includeSubdomains; preload
x-frame-options: DENY
content-security-policy: default-src 'none'; img-src 'self'; script-src 'self'; style-src 'self'; object-src 'none'
x-amz-apigw-id: Z9n2_HXqIAMFzsg=
x-content-type-options: nosniff
x-amzn-trace-id: Root=1-63488692-78ea067c541cb84f75741d22;Sampled=0
x-amzn-remapped-date: Thu, 13 Oct 2022 21:43:46 GMT
x-amz-cf-pop: HIO50-C1, SEA19-C2
x-cache: Miss from cloudfront
x-amz-cf-id: uN6RkKHKGjhauRGxTQiyluFaTwFaGBgtkJsdFMcxUoZNEu_05ocMZg==
via: 1.1 7f5e0d3b9ea85d0d75063a66c0ebc840.cloudfront.net (CloudFront), 1.1 570075675953459325e00b7bcd171df2.cloudfront.net (CloudFront), 1.1 google
date: Thu, 13 Oct 2022 23:14:16 GMT
etag: "c34dd1552df55e8b62e699a5efb14e7f26a60acb"
content-type: image/jpeg
age: 10758
cache-control: max-age=3600,public,public
alt-svc: clear
X-Firefox-Spdy: h2
gradacode.co.ke/wp-content/themes/linoor/assets/css/linoor-responsive.css?ver=1665713612
66.29.147.146200 OK 3.9 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/css/linoor-responsive.css?ver=1665713612
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash 967f36a750f4460abf626416acef4fbc
d4ce5eca0c1a91600997b56345c94d567c2376e5
80c274c2fd71014bd9d3021d81b89ff4334ff1abd7d5a1cacb896dc53d8a2898
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/linoor/assets/css/linoor-responsive.css?ver=1665713612 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3940
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/themes/linoor/assets/css/linoor-woocommerce.css?ver=1665713612
66.29.147.146200 OK 7.5 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/css/linoor-woocommerce.css?ver=1665713612
IP 66.29.147.146:0
File type ASCII text, with very long lines (537), with CRLF line terminators
Hash 5f32e362a11953013fcf8bf1da27d8ac
bc9aa268a32f84801ffec8fa0b1689bc605fc155
91a9857d564f427704652d4868a962c86d94bf02a6f8caf518c2f2a2306e16e2
GET /wp-content/themes/linoor/assets/css/linoor-woocommerce.css?ver=1665713612 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 7466
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/recent-posts-widget-with-thumbnails/public.css?ver=7.1.1
66.29.147.146200 OK 511 B URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/recent-posts-widget-with-thumbnails/public.css?ver=7.1.1
IP 66.29.147.146:0
File type ASCII text, with very long lines (404)
Hash 302a5024eef2298b0631b58ca088896c
5a7b920b5a16b7c8cf931d6499d1002085bd27ab
01e305e1d661cc656726543bfe6d86711a0a032032073ada718346f0b44d498d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/recent-posts-widget-with-thumbnails/public.css?ver=7.1.1 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 17:17:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 511
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
66.29.147.146200 OK 31 kB URL HTTP/1.1 gradacode.co.ke/wp-includes/js/jquery/jquery.min.js?ver=3.6.0
IP 66.29.147.146:0
File type ASCII text, with very long lines (65447)
Hash 9640915738503451aa21181699feab5b
c053eaf36ef0da96619706b3abda326305063bd6
f8834e669ad1f4039442c26aaa373ec39c35a233b9786d374fc3f670f16b0adc
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/jquery.min.js?ver=3.6.0 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Wed, 10 Mar 2021 17:37:24 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 30908
Keep-Alive: timeout=5, max=98
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
66.29.147.146200 OK 4.2 kB URL HTTP/1.1 gradacode.co.ke/wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2
IP 66.29.147.146:0
File type ASCII text, with very long lines (11126)
Hash 5629711d7fdd5b28441bac39b851299f
4e0bf2b7383097f7c352023a1b1b1b48a50356b6
44c444309c7a6c05ff4a9bc198bed9e9596bedb5658637c85689c9a471dcdd16
GET /wp-includes/js/jquery/jquery-migrate.min.js?ver=3.3.2 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Wed, 18 Nov 2020 11:36:06 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4169
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/themes/linoor/assets/css/linoor-main.css?ver=1665713612
66.29.147.146200 OK 61 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/css/linoor-main.css?ver=1665713612
IP 66.29.147.146:0
File type assembler source, ASCII text, with very long lines (535), with CRLF, CR line terminators
Hash d69d658c81ea4d375c3c6a9aa3426cab
784d0393fa3f7722667e26b8547b471c3437a81c
6341ea84b58dea914f13cd2ddcc8afc838f1b5c221d78d0206e406cdb3efc605
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/linoor/assets/css/linoor-main.css?ver=1665713612 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:33 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 60577
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/uploads/elementor/css/post-293.css?ver=1665561894
66.29.147.146200 OK 314 B URL HTTP/1.1 gradacode.co.ke/wp-content/uploads/elementor/css/post-293.css?ver=1665561894
IP 66.29.147.146:0
File type ASCII text, with very long lines (1080), with no line terminators
Hash 05e008abd5af3881052e6b95dc2ac1cc
1c12569fde48ac98cd970e28c938adc434e581ec
1f6ee32b28a00e8d711d4139f1b7b082e67568edc383bdcdcb05797ebd1ad2af
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-293.css?ver=1665561894 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 314
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5738fadfd14ee094abde15bccc21efa
dc09db0e0d326104b2c41c8982e036d770f0a2f9
11785be62471d0c75f0ef30c8bc4c40ebc217b3c256dcc4e47d6dbd937b99551
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 14 Oct 2022 02:13:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gradacode.co.ke/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
66.29.147.146200 OK 4.0 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0
IP 66.29.147.146:0
File type ASCII text, with very long lines (19233)
Hash 24dc15839234f4dbd06f677098762e1c
a285318fa3f4d9a1491f523f080cd32e1df12315
016fdb3d864bb8491d6450906f97c734548f76ca9ead4b13b92dc7112c5568c6
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/eicons/css/elementor-icons.min.css?ver=5.16.0 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:42 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3961
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5738fadfd14ee094abde15bccc21efa
dc09db0e0d326104b2c41c8982e036d770f0a2f9
11785be62471d0c75f0ef30c8bc4c40ebc217b3c256dcc4e47d6dbd937b99551
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 14 Oct 2022 02:13:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gradacode.co.ke/wp-content/uploads/elementor/css/post-12.css?ver=1665561894
66.29.147.146200 OK 356 B URL HTTP/1.1 gradacode.co.ke/wp-content/uploads/elementor/css/post-12.css?ver=1665561894
IP 66.29.147.146:0
File type ASCII text, with very long lines (1118), with no line terminators
Hash bebebef0c4398346a821be84da267122
f12f42cb85085349b7f27754e0d95921726be302
a83649777e5fd4efa17d3288e1e9d1226cc429de5fdd07fa67d64f0c7fafcc3f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/uploads/elementor/css/post-12.css?ver=1665561894 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 356
Keep-Alive: timeout=5, max=97
Connection: Keep-Alive
Content-Type: text/css
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5738fadfd14ee094abde15bccc21efa
dc09db0e0d326104b2c41c8982e036d770f0a2f9
11785be62471d0c75f0ef30c8bc4c40ebc217b3c256dcc4e47d6dbd937b99551
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 14 Oct 2022 02:13:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
fonts.gstatic.com/s/teko/v15/LYjCdG7kmE0gdQhfsCRgqA.woff2
172.217.21.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/teko/v15/LYjCdG7kmE0gdQhfsCRgqA.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 12920, version 1.0\012- data
Hash 4e9bb95d9d1d1977ad49de19cc440798
f329c5954156fda7ad91aca3f7176825e1deeaa7
7ca4f53e3c51595a3147ed5b6c325af58291810132602f0b2bc9305faeea770b
GET /s/teko/v15/LYjCdG7kmE0gdQhfsCRgqA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gradacode.co.ke
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12920
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Oct 2022 23:54:20 GMT
expires: Thu, 12 Oct 2023 23:54:20 GMT
cache-control: public, max-age=31536000
age: 94754
last-modified: Wed, 27 Apr 2022 16:12:07 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5738fadfd14ee094abde15bccc21efa
dc09db0e0d326104b2c41c8982e036d770f0a2f9
11785be62471d0c75f0ef30c8bc4c40ebc217b3c256dcc4e47d6dbd937b99551
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 14 Oct 2022 02:13:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5738fadfd14ee094abde15bccc21efa
dc09db0e0d326104b2c41c8982e036d770f0a2f9
11785be62471d0c75f0ef30c8bc4c40ebc217b3c256dcc4e47d6dbd937b99551
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 14 Oct 2022 02:13:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gradacode.co.ke/wp-content/uploads/elementor/css/global.css?ver=1665561894
66.29.147.146200 OK 834 B URL HTTP/1.1 gradacode.co.ke/wp-content/uploads/elementor/css/global.css?ver=1665561894
IP 66.29.147.146:0
File type ASCII text, with very long lines (6697)
Hash 2293ed79272563f3da94cb6591e19a1f
e5168d2f62c954f85611089ea8e6be9241c37cd9
977634309dfe776c26f96766e342a63b53b66d187191b80131237362879fae05
GET /wp-content/uploads/elementor/css/global.css?ver=1665561894 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:54 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 834
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
172.217.21.163200 OK 34 kB URL HTTP/2 fonts.gstatic.com/s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 33580, version 1.0\012- data
Hash 848cd2ecd011428969dc6b90431bc482
6b1a7b562a56bd54510e0f6f95e26babca331a1b
981307dcbbd348f6fb4e3eab184077392f9ee15097ea868f630debefad9044e9
GET /s/rubik/v21/iJWKBXyIfDnIV7nBrXw.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gradacode.co.ke
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 33580
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 10 Oct 2022 21:08:19 GMT
expires: Tue, 10 Oct 2023 21:08:19 GMT
cache-control: public, max-age=31536000
age: 277515
last-modified: Mon, 18 Jul 2022 19:32:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
gradacode.co.ke/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
66.29.147.146200 OK 2.9 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3
IP 66.29.147.146:0
File type ASCII text, with very long lines (9680), with no line terminators
Hash 7c2c4ebd10adb73367b5c5f0e1e5d3ce
a67e4fd0e3e7452e74b22517ba924b58307d7758
5244443e699788a134cc77adfc3fd18f03386df5fe49e6c82b057387ba4d0ebd
GET /wp-content/plugins/contact-form-7/includes/swv/js/index.js?ver=5.6.3 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Fri, 09 Sep 2022 11:21:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2914
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
fonts.gstatic.com/s/teko/v15/LYjCdG7kmE0gdRhYsCRgqA.woff2
172.217.21.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/teko/v15/LYjCdG7kmE0gdRhYsCRgqA.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 12908, version 1.0\012- data
Hash 16665b9f4631861e47e30e227eea4da4
bf293bdca2aea57481dd3055cbfc8ae63e132302
3ac7f47be06ed56cebf7d19f23386fa58144a3fec5dfb68a82edcecc20df444a
GET /s/teko/v15/LYjCdG7kmE0gdRhYsCRgqA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gradacode.co.ke
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 12908
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 10 Oct 2022 20:05:03 GMT
expires: Tue, 10 Oct 2023 20:05:03 GMT
cache-control: public, max-age=31536000
age: 281311
last-modified: Wed, 27 Apr 2022 16:11:41 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/teko/v15/LYjCdG7kmE0gdVBesCRgqA.woff2
172.217.21.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/teko/v15/LYjCdG7kmE0gdVBesCRgqA.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 13196, version 1.0\012- data
Hash 5b9fce771bd530ab9767e2b5aebd28c1
28ee5935b59df8b2d6876707e1f0f0e6768d2d31
a3bf77e9dea5a047c348fa98ccbeb5d5e07de3541ce0a2dfb243690da964804c
GET /s/teko/v15/LYjCdG7kmE0gdVBesCRgqA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gradacode.co.ke
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13196
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Mon, 10 Oct 2022 20:04:09 GMT
expires: Tue, 10 Oct 2023 20:04:09 GMT
cache-control: public, max-age=31536000
age: 281365
last-modified: Wed, 27 Apr 2022 16:17:49 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2
172.217.21.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 13324, version 1.0\012- data
Hash b4082c888eefa2dca3fe2c9d46a87180
05aeb6c58175f659fe59eaca5a9d3735dd0530e3
352ad1513eeaeec51060f01d5bed32345862ec4d9c0802b81e0a47885951e4b6
GET /s/teko/v15/LYjNdG7kmE0gfaN9pQ.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gradacode.co.ke
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13324
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Oct 2022 21:49:34 GMT
expires: Thu, 12 Oct 2023 21:49:34 GMT
cache-control: public, max-age=31536000
age: 102240
last-modified: Wed, 27 Apr 2022 17:05:55 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.gstatic.com/s/teko/v15/LYjCdG7kmE0gdXxZsCRgqA.woff2
172.217.21.163200 OK 13 kB URL HTTP/2 fonts.gstatic.com/s/teko/v15/LYjCdG7kmE0gdXxZsCRgqA.woff2
IP 172.217.21.163:0
File type Web Open Font Format (Version 2), TrueType, length 13432, version 1.0\012- data
Hash c4aefb21b70da4663e45a84381b29eef
10a6a8bceff6e4be74fbb6cc55124c90601724a0
47d687c94921ed1291e73ae7554abfc412c13c46a417395a95a2957202e2b04f
GET /s/teko/v15/LYjCdG7kmE0gdXxZsCRgqA.woff2 HTTP/1.1
Host: fonts.gstatic.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Origin: https://gradacode.co.ke
Connection: keep-alive
Referer: https://fonts.googleapis.com/
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: cross-site
TE: trailers
HTTP/2 200 OK
accept-ranges: bytes
access-control-allow-origin: *
content-security-policy-report-only: require-trusted-types-for 'script'; report-uri https://csp.withgoogle.com/csp/apps-themes
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin; report-to="apps-themes"
report-to: {"group":"apps-themes","max_age":2592000,"endpoints":[{"url":"https://csp.withgoogle.com/csp/report-to/apps-themes"}]}
timing-allow-origin: *
content-length: 13432
x-content-type-options: nosniff
server: sffe
x-xss-protection: 0
date: Wed, 12 Oct 2022 23:56:28 GMT
expires: Thu, 12 Oct 2023 23:56:28 GMT
cache-control: public, max-age=31536000
age: 94626
last-modified: Wed, 27 Apr 2022 16:18:17 GMT
content-type: font/woff2
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
ocsp.pki.goog/gts1c3
142.250.74.3200 OK 471 B IP 142.250.74.3:0
Hash d5738fadfd14ee094abde15bccc21efa
dc09db0e0d326104b2c41c8982e036d770f0a2f9
11785be62471d0c75f0ef30c8bc4c40ebc217b3c256dcc4e47d6dbd937b99551
POST /gts1c3 HTTP/1.1
Host: ocsp.pki.goog
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate
Content-Type: application/ocsp-request
Content-Length: 83
Connection: keep-alive
Pragma: no-cache
Cache-Control: no-cache
HTTP/1.1 200 OK
Content-Type: application/ocsp-response
Date: Fri, 14 Oct 2022 02:13:34 GMT
Cache-Control: public, max-age=14400
Server: ocsp_responder
Content-Length: 471
X-XSS-Protection: 0
X-Frame-Options: SAMEORIGIN
gradacode.co.ke/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8
66.29.147.146200 OK 14 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8
IP 66.29.147.146:0
File type ASCII text, with very long lines (65497)
Hash 4d4b08bf7bf712934df004376bb64556
113b4e6e9459e7344f84e5a16ec99c3b0ecc43ea
b9e323c910c748180ac8ca55e5eea93d2d1b56753fa567dd9510a5178550673a
GET /wp-content/plugins/elementor/assets/css/frontend-lite.min.css?ver=3.7.8 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:42 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 14108
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: text/css
gradacode.co.ke/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
66.29.147.146200 OK 3.9 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3
IP 66.29.147.146:0
File type HTML document, ASCII text, with very long lines (12211), with no line terminators
Hash 7ef755c2700783f9eae63fc539149a18
e57c0c5ceb5e2fbf1aaad44aad6319f8b26b69a1
95c808afbeaf569865125c132b69df4a68bca03fd6b792d38ef9a0e341dbf06b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/contact-form-7/includes/js/index.js?ver=5.6.3 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Fri, 09 Sep 2022 11:21:37 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3934
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.0.0
66.29.147.146200 OK 3.5 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.0.0
IP 66.29.147.146:0
File type ASCII text, with very long lines (9115)
Hash 4eb090d1d9263b041ec90bac1a6e6e8f
0b0a01684ed1e07a41a9f6eb02423738a68f8b12
f621d8d1bdc2c1508699ef2510c1b35122fef1ee7da3ed10fe66a881a6d882b2
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/jquery-blockui/jquery.blockUI.min.js?ver=2.7.0-wc.7.0.0 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3499
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.0.0
66.29.147.146200 OK 1.1 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.0.0
IP 66.29.147.146:0
File type HTML document, ASCII text, with very long lines (3037), with no line terminators
Hash 0d03578b274ddfa19d4be46ff5d4f242
5d5322d264d2219c50b60abcf9625533088afbf2
342455e97f9438a6f336423fa4f6fc6dc59da5d84c23f4d39ebc5425aa9ada27
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/add-to-cart.min.js?ver=7.0.0 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1086
Keep-Alive: timeout=5, max=96
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.0.0
66.29.147.146200 OK 982 B URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.0.0
IP 66.29.147.146:0
File type ASCII text, with very long lines (1668)
Hash e66463f2023b738680c9bdefece69a37
315dc8e6ebdfb18c662851244ee33e2758ad3c83
fd83e7fc6d81aa6f6680ea640e9c086aa1950a17757a582aa74ea9797a70f346
GET /wp-content/plugins/woocommerce/assets/js/js-cookie/js.cookie.min.js?ver=2.1.4-wc.7.0.0 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 982
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.0.0
66.29.147.146200 OK 794 B URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.0.0
IP 66.29.147.146:0
File type ASCII text, with very long lines (2139), with no line terminators
Hash 29307e8dec33cf3411ca4e1f2c84e9d0
484402289464d7ffb1475827f3438329d520bfc6
a2db59efaa416ef0c9d5d58f142cd5e44c475348cff20a664586fd3cda1b5f5b
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/woocommerce.min.js?ver=7.0.0 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 794
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.0.0
66.29.147.146200 OK 1.0 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.0.0
IP 66.29.147.146:0
File type ASCII text, with very long lines (2938), with no line terminators
Hash 45db3d2887c26700a51bf469e3bb3aa1
d070b5fb53d2fbb66964bbfd482270b855d0ee96
1abc0cff49f82d9a063c04cd086b991af6ad00467efc4cb8d8d4e3c9a0f95777
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/woocommerce/assets/js/frontend/cart-fragments.min.js?ver=7.0.0 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:45 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1039
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/knob/knob.js?ver=1650032799
66.29.147.146200 OK 6.1 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/knob/knob.js?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash 239deb14624b79cdb7a9a1354cd3b559
a6fe467c4c34ae90eb302dbaa0288ad1bb7292b5
b8f594d4f9828999352019758b599f9649349a662681f34c9cf08979587ddb32
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/knob/knob.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6057
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/countdown/countdown.js?ver=1650032799
66.29.147.146200 OK 2.2 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/countdown/countdown.js?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash 8748f36391ae6df2cd397c0951968467
c43f61d5daf8e35831d1e8eeaa9e3947454df33b
eb310d4d657404c9d90741dc30eeb8aed4570f9953d31db48ca61417c92fbe85
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/countdown/countdown.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2171
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jarallax/jarallax.min.js?ver=1650032799
66.29.147.146200 OK 5.3 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jarallax/jarallax.min.js?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with very long lines (15303), with CRLF line terminators
Hash 12a009a21a8caa38549d6fb513753c65
cb29b8dac22f4b2d16b6c363723c77121fc21a80
38c3d3f1937f071b5d1b34ece2eb71a21523cbda0baf4aadb0f324a00da9551d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/jarallax/jarallax.min.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5252
Keep-Alive: timeout=5, max=95
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/appear/appear.js?ver=1650032799
66.29.147.146200 OK 1.4 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/appear/appear.js?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash 6e579d2e7a40e9f29986859858306345
861bd2368d7c3af07957477dca1d7f3161b06cd6
df6e430238f062023873e9cdf6b2dffa7fb53bba0f25143d9cc5463dd069765d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/appear/appear.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1368
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jquery-fancybox/jquery.fancybox.js?ver=1650032799
66.29.147.146200 OK 36 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jquery-fancybox/jquery.fancybox.js?ver=1650032799
IP 66.29.147.146:0
File type Unicode text, UTF-8 text, with CRLF line terminators
Hash e4a5559da38bddc3fd60db21b4a78d62
d026ebff3eb0f8cf37e8c9196dafe91c307ff077
7e3dc524af1120518ff4660c6c0719d3bf8a80887745874230beb70a2d3b87ed
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/jquery-fancybox/jquery.fancybox.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 36466
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jquery-easing/jquery.easing.min.js?ver=1650032799
66.29.147.146200 OK 1.9 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jquery-easing/jquery.easing.min.js?ver=1650032799
IP 66.29.147.146:0
File type Unicode text, UTF-8 text, with very long lines (3601), with CRLF line terminators
Hash 393aa749ccac940f43dc8f4ae9c9defd
739e5d87569d0e0126c2eb9f52a8a08fc9b4de75
8c7bd8d04a8753306ff3a54ca7ed8e9da642cda6aafcac1926068bda1f830980
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/jquery-easing/jquery.easing.min.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 1881
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/wow/wow.js?ver=1650032799
66.29.147.146200 OK 2.2 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/wow/wow.js?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with very long lines (6269), with CRLF line terminators
Hash 3a0ccdd875f4f4fec83bbbf33b827285
df6193535cfbc57c662a5a67cd88da66fa617347
04cf198b89e33c5bdecf1406e68085cb6d372b567a0653c551f37f4eff76df14
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/wow/wow.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2212
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/owl-carousel/owl.js?ver=1650032799
66.29.147.146200 OK 20 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/owl-carousel/owl.js?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with very long lines (360), with CRLF line terminators
Hash 04228abe43cde75b74358bd9fb0401cd
f4dd5e7c5c46e6a9443470abdd8b1a3269421fcd
5f453ca5981bd266703e1f77df6659c8ef4e0e704f1fccd3c78e9c9d05b89d5d
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/owl-carousel/owl.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 20223
Keep-Alive: timeout=5, max=94
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/mixitup/mixitup.js?ver=1650032799
66.29.147.146200 OK 12 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/mixitup/mixitup.js?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with very long lines (367), with CRLF line terminators
Hash 03be0e27d8a619d65d78c7485cf16887
9f08cc88bfd3bb30405b5826370ce925e2cae88b
2af0b04ced38093a11d995475b9c2003bc85282c33e967ba74ee3046aa18a1d7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/mixitup/mixitup.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 11459
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/isotope/isotope.js?ver=1650032799
66.29.147.146200 OK 10 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/isotope/isotope.js?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with very long lines (32039), with CRLF line terminators
Hash 3878b204de7b3d267f24d689b8137be4
48de6da917d070cd2c8b73b680ca4c440e947fd6
607c6ee3e22a48ca04d95a0bd51b5b6ae4579b89bd395d90f8d359815e1edb5e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/isotope/isotope.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10188
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jquery-ajaxchimp/jquery.ajaxchimp.min.js?ver=1650032799
66.29.147.146200 OK 939 B URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/jquery-ajaxchimp/jquery.ajaxchimp.min.js?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with very long lines (2381), with no line terminators
Hash 1c157aa7cdf20ef979ba469afff5377b
64ae54010d36d749a6f9724040072841d2ff95e8
d0957fed84330d67f9e748e79ee29587d50a854fac4865c535872c407c0b6faa
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/vendors/jquery-ajaxchimp/jquery.ajaxchimp.min.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 939
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/swiper/swiper.min.js?ver=1650032799
66.29.147.146200 OK 36 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/vendors/swiper/swiper.min.js?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with very long lines (65272), with CRLF line terminators
Hash 4314a49bd82e66bf857671627cea6309
a98db420265ce5c7c7c6d2f624d4e995ba258638
fe0e21c2f534008a439e9226cd3d99ed0cad3d4331f7308cf5b5cd9601c11e64
GET /wp-content/plugins/linoor-addon/assets/vendors/swiper/swiper.min.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 35900
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
66.29.147.146200 OK 6.9 kB URL HTTP/1.1 gradacode.co.ke/wp-includes/js/jquery/ui/core.min.js?ver=1.13.1
IP 66.29.147.146:0
File type Unicode text, UTF-8 text, with very long lines (8189)
Hash 7e2b78a6e8a9b90385330755ee1cf3e5
684c325f39d45e42ae44a9e42f5e9fe4fb0b909c
43f124dabb4bc663cc1cc8d3161c1e6365cf8445d873ed5d69bbfdb507cf24a9
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/core.min.js?ver=1.13.1 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Sat, 09 Jul 2022 16:23:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 6914
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.1
66.29.147.146200 OK 3.0 kB URL HTTP/1.1 gradacode.co.ke/wp-includes/js/jquery/ui/menu.min.js?ver=1.13.1
IP 66.29.147.146:0
File type ASCII text, with very long lines (9937)
Hash e13e2a5aae864d21ed354d27340879a8
27b4256b04bb5b24275cd60fdbc2e4f7fe87983c
0ba96929c19d286796f484f9e77957485498adadc3fe1d5ea91d0de29d00ddd2
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/menu.min.js?ver=1.13.1 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:34 GMT
Server: Apache
Last-Modified: Sat, 09 Jul 2022 16:23:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 3024
Keep-Alive: timeout=5, max=93
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-includes/js/jquery/ui/selectmenu.min.js?ver=1.13.1
66.29.147.146200 OK 2.9 kB URL HTTP/1.1 gradacode.co.ke/wp-includes/js/jquery/ui/selectmenu.min.js?ver=1.13.1
IP 66.29.147.146:0
File type ASCII text, with very long lines (9155)
Hash 2080fd7b1ff89267f82380007215480c
5bda65404cda2157055d59cdebf31ebe86ca068c
b7a6791dfc9954b63b5237c1b262e1f18abaff982a5971ee279114d9b7d0459b
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/jquery/ui/selectmenu.min.js?ver=1.13.1 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:35 GMT
Server: Apache
Last-Modified: Sat, 09 Jul 2022 16:23:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2946
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/linoor-addon/assets/js/linoor-addon.js?ver=1650032799
66.29.147.146200 OK 4.2 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/linoor-addon/assets/js/linoor-addon.js?ver=1650032799
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash c213088f2ee6766092bfa07579784e36
7c9ec386a220fca4f9142143614fda5e64941ab3
341f045a44d2a1f3469aa31fe314c8b912b5a2eb6c247a3b96da4b26e216bfd9
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/linoor-addon/assets/js/linoor-addon.js?ver=1650032799 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:35 GMT
Server: Apache
Last-Modified: Fri, 15 Apr 2022 14:26:39 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 4160
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/themes/linoor/assets/vendors/bootstrap/js/bootstrap.bundle.min.js?ver=4.5.3
66.29.147.146200 OK 22 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/vendors/bootstrap/js/bootstrap.bundle.min.js?ver=4.5.3
IP 66.29.147.146:0
File type ASCII text, with very long lines (65294), with CRLF line terminators
Hash 78955a4071108b2e7299322ba22468a7
7270edc466e5eaacb6aeb1069c15c8d66e256f12
a20f0855b0431a025a7f70fdad1074cf53231297c9bb2b0bf9da6ffe9946e00b
GET /wp-content/themes/linoor/assets/vendors/bootstrap/js/bootstrap.bundle.min.js?ver=4.5.3 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:35 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 21811
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/themes/linoor/assets/js/linoor-theme.js?ver=1665713612
66.29.147.146200 OK 2.7 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/js/linoor-theme.js?ver=1665713612
IP 66.29.147.146:0
File type ASCII text, with CRLF line terminators
Hash efc7b29c5fdcfdcaa7417dd52cdd7b21
296d3b031f7f426893cd048407d7cc76faf3df02
ac894a812f8c7c22b6b0bfc4e31446dc3fbc5d1a1538c2aa35a04fd4bda66d78
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/linoor/assets/js/linoor-theme.js?ver=1665713612 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:35 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2740
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6
66.29.147.146200 OK 8.8 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6
IP 66.29.147.146:0
File type Unicode text, UTF-8 text, with very long lines (24733), with no line terminators
Hash 2c01ef4949cdd996f62eb7b0b708a3cf
d825267291eea563cf06608a56e955dfbfa90329
6a24355d8db097fe014c593f8c5f16d957177a238601f19853dd0bf54051e238
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/page-links-to/dist/new-tab.js?ver=3.3.6 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:35 GMT
Server: Apache
Last-Modified: Mon, 11 Jul 2022 21:57:19 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 8819
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8
66.29.147.146200 OK 2.2 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8
IP 66.29.147.146:0
File type ASCII text, with very long lines (4918)
Hash d0e4eb53954c6912b6bd9ec65c7077c7
914cff98ed617cd6147417b846c3de04fb551fc8
d81efc68c2e078e814a9753404ae8bc87f7eed14de224c2c42f426d20ef46bb6
GET /wp-content/plugins/elementor/assets/js/webpack.runtime.min.js?ver=3.7.8 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:35 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:42 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2193
Keep-Alive: timeout=5, max=92
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8
66.29.147.146200 OK 11 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8
IP 66.29.147.146:0
File type Unicode text, UTF-8 text, with very long lines (32889)
Hash 41e7307e69775772797b7cd940b4df0a
b9e0e06eeb178c11a7bbfdc0696bba4e695741d2
d9a2e4abd068e07870a30beaeb7471ace3c594816a0c6f8543773ea8e65a0954
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend-modules.min.js?ver=3.7.8 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:35 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:42 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10742
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
66.29.147.146200 OK 3.0 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2
IP 66.29.147.146:0
File type ASCII text, with very long lines (12198), with no line terminators
Hash cfea3c51880820f2962a7773fbc864f9
45aa7ddc9b0c4201097d0df36791ab346470b734
12296ac9ef200103f8eea198a2bcd92692119dacece39538499758a0349035fb
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/lib/waypoints/waypoints.min.js?ver=4.0.2 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:35 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:42 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 2993
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8
66.29.147.146200 OK 12 kB URL HTTP/1.1 gradacode.co.ke/wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8
IP 66.29.147.146:0
File type ASCII text, with very long lines (40474)
Hash a6c577d8e3a2d401d3d8dc73be9bf1ea
f323e195b9ad4843d81de9715b0dd2efd978f65a
3c0b9b10be0457a0d48117486750dadde37937a9f15b3299383082c52590ec7e
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/plugins/elementor/assets/js/frontend.min.js?ver=3.7.8 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:35 GMT
Server: Apache
Last-Modified: Wed, 12 Oct 2022 08:04:42 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 12045
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
66.29.147.146200 OK 5.0 kB URL HTTP/1.1 gradacode.co.ke/wp-includes/js/wp-emoji-release.min.js?ver=6.0.2
IP 66.29.147.146:0
File type ASCII text, with very long lines (15660)
Hash e6624e0b978e6ddba476be41aaaa82df
822e920d8233072110ed7c8a7f379e5b13209b18
dac86a9ce08e4d8cded47b4fa900a664b0c997d8910c2a1be54a423678925a41
Analyzer Verdict Alert fortinet Phishing
GET /wp-includes/js/wp-emoji-release.min.js?ver=6.0.2 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: script
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:35 GMT
Server: Apache
Last-Modified: Sat, 09 Jul 2022 16:23:26 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 5009
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: application/javascript
gradacode.co.ke/wp-content/uploads/2022/07/cropped.png
66.29.147.146200 OK 53 kB URL HTTP/1.1 gradacode.co.ke/wp-content/uploads/2022/07/cropped.png
IP 66.29.147.146:0
File type PNG image data, 156 x 156, 8-bit/color RGBA, non-interlaced\012- data
Hash 28c69a90c71621a4f1c4e5091bd660f4
b9dc6c07834de8215dc8d7a675e072cc8ac3c9be
0a924b1245ea1afef7ea5bfdde306c7110fcdfd5da2c9bf8618b1472755c6c3f
GET /wp-content/uploads/2022/07/cropped.png HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:35 GMT
Server: Apache
Last-Modified: Sat, 09 Jul 2022 21:07:41 GMT
Accept-Ranges: bytes
Content-Length: 53373
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png
gradacode.co.ke/wp-content/themes/linoor/assets/images/icons/chat-icon.png
66.29.147.146200 OK 774 B URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/images/icons/chat-icon.png
IP 66.29.147.146:0
File type PNG image data, 42 x 39, 8-bit colormap, non-interlaced\012- data
Hash b8d117a17fcf5169b607d36bb2ab0aa5
99baee141d6f9e273806d8d22840c13bacd294b3
0a9a8528f620e5fc10001bd75eea191759d9f9caea8b5a6874ce4aee2a2abcdb
GET /wp-content/themes/linoor/assets/images/icons/chat-icon.png HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/wp-content/themes/linoor/assets/css/linoor-main.css?ver=1665713612
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:35 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Content-Length: 774
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
gradacode.co.ke/wp-content/themes/linoor/assets/vendors/flaticons/fonts/Flaticon.ttf?aetdej
66.29.147.146200 OK 65 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/vendors/flaticons/fonts/Flaticon.ttf?aetdej
IP 66.29.147.146:0
File type TrueType Font data, 11 tables, 1st "OS/2", 14 names, Macintosh, type 1 string, Flaticon \012- data
Hash 8cc174d439f031d106731f81267b609d
0d0cbf911c5bfe84a0bd4c61a2d7e61f3727b71b
a1dad218098287b2ab86125b7999075cdcaa510b0b31cac6d9d7b62b2964933f
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/linoor/assets/vendors/flaticons/fonts/Flaticon.ttf?aetdej HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/wp-content/themes/linoor/assets/vendors/flaticons/css/flaticon.css?ver=1.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:35 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Transfer-Encoding: chunked
Content-Type: font/ttf
gradacode.co.ke/wp-content/themes/linoor/assets/vendors/fontawesome/webfonts/fa-solid-900.woff2
66.29.147.146200 OK 80 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/vendors/fontawesome/webfonts/fa-solid-900.woff2
IP 66.29.147.146:0
File type Web Open Font Format (Version 2), TrueType, length 80300, version 331.-31392\012- data
Hash 8e1ed89b6ccb8ce41faf5cb672677105
9b592048b9062b00f0b2dd782d70a95b7dc69b83
6b555920e358f8a25a422988b448615c33bcccb4f932e8331cebfc8e2a737fc7
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/linoor/assets/vendors/fontawesome/webfonts/fa-solid-900.woff2 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://gradacode.co.ke/wp-content/themes/linoor/assets/vendors/fontawesome/css/all.min.css?ver=5.15.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:35 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Content-Length: 80300
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=91
Connection: Keep-Alive
Content-Type: font/woff2
gradacode.co.ke/wp-content/themes/linoor/assets/images/background/b-shape-1.png
66.29.147.146200 OK 1.6 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/images/background/b-shape-1.png
IP 66.29.147.146:0
File type PNG image data, 217 x 328, 8-bit colormap, non-interlaced\012- data
Hash df8dba0821c8544eed3c936da75afef7
ccb4ceaeac84f85b58bdd66872816c28f970f9b5
8859c62e492109d8aeea3a35dc7f3c9f3ff16ee6f8e017fabb2814eaf6e20bfc
GET /wp-content/themes/linoor/assets/images/background/b-shape-1.png HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/wp-content/themes/linoor/assets/css/linoor-main.css?ver=1665713612
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:35 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Content-Length: 1641
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
gradacode.co.ke/gradacode/wp-content/uploads/2022/04/slider3.png
66.29.147.146404 Not Found 10 kB URL HTTP/1.1 gradacode.co.ke/gradacode/wp-content/uploads/2022/04/slider3.png
IP 66.29.147.146:0
File type HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- HTML document text\012- exported SGML document text\012- exported SGML document, Unicode text, UTF-8 text, with very long lines (8047), with CRLF, LF line terminators
Hash f0c948d58ff453367a08345959290450
dd11a4c564a52cbf0e0b0b4246e098701f3eb077
a54da3328ec81d93323fb4684e2e3722bec93a42a558564765ececd5957723e5
GET /gradacode/wp-content/uploads/2022/04/slider3.png HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 404 Not Found
Date: Fri, 14 Oct 2022 02:13:35 GMT
Server: Apache
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
Link: <https://gradacode.co.ke/wp-json/>; rel="https://api.w.org/"
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 10229
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: text/html; charset=UTF-8
gradacode.co.ke/?wc-ajax=get_refreshed_fragments
66.29.147.146200 OK 273 B URL HTTP/1.1 gradacode.co.ke/?wc-ajax=get_refreshed_fragments
IP 66.29.147.146:0
File type JSON data\012- , ASCII text, with very long lines (443), with no line terminators
Hash b10790f537bf867b0897675090edf76a
fe6b19bf6deed57b24cdf6e75bf6f6cb7b078963
f7a17b21817a2a2e820b0b85e1e726341aeed54ff75c85ef7fe9115aa872e2f4
Analyzer Verdict Alert fortinet Phishing
POST /?wc-ajax=get_refreshed_fragments HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: */*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Content-Type: application/x-www-form-urlencoded; charset=UTF-8
X-Requested-With: XMLHttpRequest
Content-Length: 18
Origin: https://gradacode.co.ke
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: empty
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:35 GMT
Server: Apache
Access-Control-Allow-Origin: https://gradacode.co.ke
Access-Control-Allow-Credentials: true
X-Content-Type-Options: nosniff
Expires: Wed, 11 Jan 1984 05:00:00 GMT
Cache-Control: no-cache, must-revalidate, max-age=0
X-Robots-Tag: noindex
Vary: Accept-Encoding,User-Agent
Content-Encoding: gzip
Content-Length: 273
Keep-Alive: timeout=5, max=87
Connection: Keep-Alive
Content-Type: application/json; charset=UTF-8
gradacode.co.ke/wp-content/themes/linoor/assets/images/background/b-shape-2.png
66.29.147.146200 OK 1.1 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/images/background/b-shape-2.png
IP 66.29.147.146:0
File type PNG image data, 124 x 457, 4-bit colormap, non-interlaced\012- data
Hash 663e23e0cc00e7910c5d470fd8a01ecf
92fe732b4f079004d3b23f32ff6709b1ef6c9c22
991ab27d61f449bf4bc52e7ef3c97229b33ceb0a091955b798d0a3225a7c635e
GET /wp-content/themes/linoor/assets/images/background/b-shape-2.png HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/wp-content/themes/linoor/assets/css/linoor-main.css?ver=1665713612
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:35 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Content-Length: 1149
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
gradacode.co.ke/wp-content/themes/linoor/assets/images/background/footer-bg.png
66.29.147.146200 OK 16 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/images/background/footer-bg.png
IP 66.29.147.146:0
File type PNG image data, 1323 x 586, 2-bit colormap, non-interlaced\012- data
Hash 283bb8b50b5fd49acd97ff096539257f
05902de8f07b9be8d6c255e21bf2b6e8462ddc33
7f5b73e4a4771c88e71f764af89090c7a664da09d75f5a88fb2aeb40a2ead418
GET /wp-content/themes/linoor/assets/images/background/footer-bg.png HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/wp-content/themes/linoor/assets/css/linoor-main.css?ver=1665713612
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:35 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Content-Length: 15899
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: image/png
gradacode.co.ke/wp-content/themes/linoor/assets/vendors/fontawesome/webfonts/fa-brands-400.woff2
66.29.147.146200 OK 78 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/vendors/fontawesome/webfonts/fa-brands-400.woff2
IP 66.29.147.146:0
File type Web Open Font Format (Version 2), TrueType, length 78460, version 331.-31392\012- data
Hash f075c50f89795e4cdb4d45b51f1a6800
f726c4275bb494a045fde059175f072de06c01df
71b3ce72680f4183d28db86b184542051fd533bb1146933233e4f6a20cf98cba
Analyzer Verdict Alert fortinet Phishing
GET /wp-content/themes/linoor/assets/vendors/fontawesome/webfonts/fa-brands-400.woff2 HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: application/font-woff2;q=1.0,application/font-woff;q=0.9,*/*;q=0.8
Accept-Language: en-US,en;q=0.5
Accept-Encoding: identity
Connection: keep-alive
Referer: https://gradacode.co.ke/wp-content/themes/linoor/assets/vendors/fontawesome/css/all.min.css?ver=5.15.1
Sec-Fetch-Dest: font
Sec-Fetch-Mode: cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:35 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Content-Length: 78460
Vary: Accept-Encoding,User-Agent
Keep-Alive: timeout=5, max=90
Connection: Keep-Alive
Content-Type: font/woff2
gradacode.co.ke/wp-content/themes/linoor/assets/images/icons/close-2-1.png
66.29.147.146200 OK 1.1 kB URL HTTP/1.1 gradacode.co.ke/wp-content/themes/linoor/assets/images/icons/close-2-1.png
IP 66.29.147.146:0
File type PNG image data, 17 x 17, 8-bit/color RGBA, non-interlaced\012- data
Hash 254ab1731cdc1429813ac4126b8a39b5
59b2d9ae97a43f02fde447959b0ef44e10ac1a4d
d9030eb9f54640a1ac66d2b3c31f46bc8c63ebb0354ef504d1cebbfb14796111
GET /wp-content/themes/linoor/assets/images/icons/close-2-1.png HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/wp-content/themes/linoor/assets/css/linoor-main.css?ver=1665713612
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:35 GMT
Server: Apache
Last-Modified: Mon, 20 Dec 2021 10:36:08 GMT
Accept-Ranges: bytes
Content-Length: 1054
Keep-Alive: timeout=5, max=88
Connection: Keep-Alive
Content-Type: image/png
gradacode.co.ke/wp-content/uploads/2022/07/cropped-63x63.png
66.29.147.146200 OK 3.8 kB URL HTTP/1.1 gradacode.co.ke/wp-content/uploads/2022/07/cropped-63x63.png
IP 66.29.147.146:0
File type PNG image data, 63 x 63, 8-bit/color RGBA, non-interlaced\012- data
Hash 274b4d99c14938fcb98c9141327d27da
f400b2c1d62c34dd4b830fcfaa0db51c19815da8
b27d9b7d186b4efc460e09824cd32476ff52709e4b90b90919d39c5117e0e1c1
GET /wp-content/uploads/2022/07/cropped-63x63.png HTTP/1.1
Host: gradacode.co.ke
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: image/avif,image/webp,*/*
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/images/profoma/EXEL.zip
Sec-Fetch-Dest: image
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: same-origin
HTTP/1.1 200 OK
Date: Fri, 14 Oct 2022 02:13:35 GMT
Server: Apache
Last-Modified: Sat, 09 Jul 2022 21:07:41 GMT
Accept-Ranges: bytes
Content-Length: 3751
Keep-Alive: timeout=5, max=89
Connection: Keep-Alive
Content-Type: image/png
fonts.googleapis.com/css?family=Rubik%3A300%2C400%2C700%7CTeko%3A300%2C400%2C500%2C600%2C700%26subset%3Dlatin%2Clatin-ext
216.58.211.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Rubik%3A300%2C400%2C700%7CTeko%3A300%2C400%2C500%2C600%2C700%26subset%3Dlatin%2Clatin-ext
IP 216.58.211.10:0
GET /css?family=Rubik%3A300%2C400%2C700%7CTeko%3A300%2C400%2C500%2C600%2C700%26subset%3Dlatin%2Clatin-ext HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 14 Oct 2022 02:13:33 GMT
date: Fri, 14 Oct 2022 02:13:33 GMT
cache-control: private, max-age=86400
cross-origin-resource-policy: cross-origin
cross-origin-opener-policy: same-origin-allow-popups
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2
fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2
216.58.211.10200 OK 0 B URL HTTP/2 fonts.googleapis.com/css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2
IP 216.58.211.10:0
GET /css?family=Roboto%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic%7CRoboto+Slab%3A100%2C100italic%2C200%2C200italic%2C300%2C300italic%2C400%2C400italic%2C500%2C500italic%2C600%2C600italic%2C700%2C700italic%2C800%2C800italic%2C900%2C900italic&display=auto&ver=6.0.2 HTTP/1.1
Host: fonts.googleapis.com
User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:96.0) Gecko/20100101 Firefox/96.0
Accept: text/css,*/*;q=0.1
Accept-Language: en-US,en;q=0.5
Accept-Encoding: gzip, deflate, br
Connection: keep-alive
Referer: https://gradacode.co.ke/
Sec-Fetch-Dest: style
Sec-Fetch-Mode: no-cors
Sec-Fetch-Site: cross-site
HTTP/2 200 OK
content-type: text/css; charset=utf-8
access-control-allow-origin: *
timing-allow-origin: *
link: <https://fonts.gstatic.com>; rel=preconnect; crossorigin
strict-transport-security: max-age=31536000
expires: Fri, 14 Oct 2022 02:13:33 GMT
date: Fri, 14 Oct 2022 02:13:33 GMT
cache-control: private, max-age=86400
cross-origin-opener-policy: same-origin-allow-popups
cross-origin-resource-policy: cross-origin
content-encoding: gzip
server: ESF
x-xss-protection: 0
x-frame-options: SAMEORIGIN
x-content-type-options: nosniff
alt-svc: h3=":443"; ma=2592000,h3-29=":443"; ma=2592000,h3-Q050=":443"; ma=2592000,h3-Q046=":443"; ma=2592000,h3-Q043=":443"; ma=2592000,quic=":443"; ma=2592000; v="46,43"
X-Firefox-Spdy: h2